The National Institute of Standards and Technology has begun seeking industry feedback on the third revision of a draft special publication designed to guide organizations to incorporate cybersecurity incident response recommendations and considerations into their risk management activities.
The initial public draft of Special Publication 800-61 highlights the importance of integrating incident response measures in cybersecurity risk management practices and policies to reduce impact of incidents and enhance the effectiveness of organizations’ incident detection, response and recovery efforts.
Incident response is one of the key areas of focus of the revised version of NIST’s Cybersecurity Framework released in February to help organizations manage and mitigate cybersecurity risks.
The updated framework’s six main functions — identify, protect, detect, respond, recover and govern — all support the implementation of incident response plans.
Comments on the draft publication are due May 20.
The Potomac Officers Club will host the 2024 Cyber Summit on June 6 to hear from government and industry experts about the dynamic and ever-evolving role of cyber in the public sector. Register here!
